Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/0t8252z8eaeXPVLcQm38vO3g8jY.roa
File: 0t8252z8eaeXPVLcQm38vO3g8jY.roa (raw, json)
Hash identifier: BWa2C86f0j2Vu6Zf3ydPICx5iCHtMiLKVMPYH+qbJCk=
Subject key identifier: D2:DF:36:E7:6C:FC:79:A7:97:3D:52:DC:42:6D:FC:BC:ED:E0:F2:36
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018241028FCD8443B68D2CD68D6AF730208A
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/0t8252z8eaeXPVLcQm38vO3g8jY.roa
Signing time: Wed 27 Jul 2022 18:54:23 +0000
ROA not before: Wed 27 Jul 2022 18:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 89.185.24.0/22 maxlen: 22
89.185.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:41:02:8f:cd:84:43:b6:8d:2c:d6:8d:6a:f7:30:20:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jul 27 18:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2df36e76cfc79a7973d52dc426dfcbcede0f236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:da:89:24:be:41:da:a7:02:61:ec:c0:22:1a:
29:a9:0f:c3:d0:b0:85:8f:c2:8a:ab:dc:da:da:ef:
9b:65:51:b3:3f:ed:76:0a:b0:50:b1:c9:e7:b8:d8:
f5:0f:ea:78:d8:36:fd:06:88:73:7b:e4:d6:38:33:
a1:e1:d5:aa:3c:80:d8:0b:c9:08:7b:23:1d:6e:42:
36:3c:94:66:49:38:2d:99:f7:d6:80:3a:4c:d8:67:
3b:30:e2:2d:4b:fd:4d:16:da:ce:c2:f6:fc:db:e4:
96:f1:9e:95:14:25:84:ac:6b:2c:71:2d:da:be:64:
60:77:12:87:f6:ad:a0:b8:be:c9:3a:31:90:77:14:
ad:76:78:cf:51:dd:b4:97:6e:79:88:29:be:76:07:
8c:44:f5:c5:27:8d:90:ed:06:cd:d5:95:9f:4e:78:
6c:fb:7c:4e:dc:e4:26:7d:ff:a6:c5:e9:ab:9f:5d:
c9:84:86:fc:22:53:33:32:d0:06:4c:95:7e:1d:27:
a8:7b:78:f5:52:b6:f1:36:98:22:24:03:b0:e9:80:
c6:93:98:3e:a0:b5:af:90:ac:ed:37:86:ba:f2:63:
54:25:80:61:37:a6:96:78:24:66:2c:9a:12:24:10:
a1:1b:02:80:8e:5b:4b:19:a7:1f:47:96:cf:f8:d7:
0b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:DF:36:E7:6C:FC:79:A7:97:3D:52:DC:42:6D:FC:BC:ED:E0:F2:36
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/0t8252z8eaeXPVLcQm38vO3g8jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.24.0/21
Signature Algorithm: sha256WithRSAEncryption
55:2e:c5:26:90:92:e0:fb:da:ca:da:18:3d:08:4b:f1:17:1a:
4a:78:4b:a6:da:28:36:81:7e:5d:27:8e:51:c6:88:6a:96:16:
4c:d4:ce:44:c9:63:b1:fd:18:e1:45:af:37:5c:78:bb:3f:d9:
70:1b:9e:e3:b9:30:5b:c5:0a:44:d0:b6:a9:7e:d2:82:5d:ba:
fb:bf:8f:6b:76:c4:66:76:d5:b1:94:3c:fa:d1:2c:d1:22:76:
60:9e:da:75:45:41:33:cd:0b:54:a4:97:fd:9a:ef:79:fa:9a:
d9:15:48:4e:15:b6:ed:d3:5a:74:2c:a7:ae:46:0f:c5:9c:3a:
5d:b0:91:fe:7c:de:10:f2:c3:c7:3e:2d:fc:d4:12:88:f8:26:
65:21:d3:2a:91:67:47:fe:8f:da:23:7e:92:0e:98:4c:cb:43:
b6:6c:7d:b5:80:94:b3:78:7d:db:4a:02:4d:0e:f7:d3:6b:8b:
9b:6b:b5:d0:fa:97:89:29:96:c0:9e:ec:04:6e:c0:67:22:cf:
e1:53:c2:94:24:08:8e:54:d7:89:ba:c9:4c:80:8d:3e:10:f3:
ec:93:b6:ca:f4:06:eb:3a:38:07:b4:19:ef:c3:f3:32:02:8e:
82:ef:86:33:e6:62:41:b6:00:37:d5:85:a2:e2:e7:d8:1a:40:
e9:e8:39:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJBAo/NhEO2jSzWjWr3MCCKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjIwNzI3MTg1NDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMmRmMzZlNzZjZmM3OWE3OTczZDUyZGM0MjZkZmNiY2VkZTBmMjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttqJJL5B2qcCYezAIhopqQ/D0LCF
j8KKq9za2u+bZVGzP+12CrBQscnnuNj1D+p42Db9Bohze+TWODOh4dWqPIDYC8kI
eyMdbkI2PJRmSTgtmffWgDpM2Gc7MOItS/1NFtrOwvb82+SW8Z6VFCWErGsscS3a
vmRgdxKH9q2guL7JOjGQdxStdnjPUd20l255iCm+dgeMRPXFJ42Q7QbN1ZWfTnhs
+3xO3OQmff+mxemrn13JhIb8IlMzMtAGTJV+HSeoe3j1UrbxNpgiJAOw6YDGk5g+
oLWvkKztN4a68mNUJYBhN6aWeCRmLJoSJBChGwKAjltLGacfR5bP+NcL0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNLfNuds/Hmnlz1S3EJt/Lzt4PI2MB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvMHQ4MjUyejhlYWVYUFZMY1FtMzh2TzNnOGpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDWbkYMA0G
CSqGSIb3DQEBCwUAA4IBAQBVLsUmkJLg+9rK2hg9CEvxFxpKeEum2ig2gX5dJ45R
xohqlhZM1M5EyWOx/RjhRa83XHi7P9lwG57juTBbxQpE0LapftKCXbr7v49rdsRm
dtWxlDz60SzRInZgntp1RUEzzQtUpJf9mu95+prZFUhOFbbt01p0LKeuRg/FnDpd
sJH+fN4Q8sPHPi381BKI+CZlIdMqkWdH/o/aI36SDphMy0O2bH21gJSzeH3bSgJN
DvfTa4uba7XQ+peJKZbAnuwEbsBnIs/hU8KUJAiOVNeJuslMgI0+EPPsk7bK9Abr
OjgHtBnvw/MyAo6C74Yz5mJBtgA31YWi4ufYGkDp6Dkt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:14 2024 by rpki-client on console-fra.rpki-client.org